$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: sG965rvHZO9KT7ts6INe4HNtJD3TJJsRJHo3/dDpZbE= Subject key identifier: D0:59:94:C8:68:3B:CB:C5:F5:B7:41:B9:D5:5C:00:F4:10:7D:D0:76 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 044E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 0442 Signing time: Sun 19 Apr 2026 00:13:39 +0000 Manifest this update: Sun 19 Apr 2026 00:13:38 +0000 Manifest next update: Sun 26 Apr 2026 00:13:38 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: VjlDA3zlmOheAEwcFclxcsMYFouJ0WkRjosPFjbImRU=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: I3945a68aAj4Bezh1bF6xRl/WpfQZcBM/2Xudp6szlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 00:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Apr 19 00:13:38 2026 GMT Not After : Apr 26 00:13:38 2026 GMT Subject: CN=69e41e33-d171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:b4:52:6d:39:74:12:1c:5e:a1:aa:8b:dd: 05:9a:4b:f2:59:66:0f:26:c0:8e:aa:62:62:9b:7a: c7:68:22:f9:5e:91:87:eb:ce:d0:92:a0:10:8d:4d: 23:42:1f:16:30:18:e9:88:5f:1a:87:03:6d:ed:80: c2:cf:c1:b2:2c:9b:ab:4d:8b:62:2a:75:75:93:c7: ab:a2:6b:9e:0e:59:29:59:9e:77:72:f9:a2:a6:f5: 3d:6e:38:ee:17:54:58:d0:14:2a:e5:8d:e4:ac:72: 7a:34:b9:f0:ba:a3:e7:3c:4b:c5:07:37:0c:ab:2b: 40:48:af:5d:06:06:00:50:69:07:93:e4:f4:1c:5f: fd:92:8b:e8:b1:1e:a2:9d:50:38:ea:e2:a4:17:93: b7:a9:c9:b5:0b:21:bc:01:1a:af:87:f4:eb:44:8b: 86:76:5e:bc:34:2d:03:5d:da:61:7c:9d:17:28:08: 87:57:ae:dc:b1:88:35:2b:08:16:9d:0f:db:27:06: a0:f7:6f:8b:e2:01:36:5e:7f:b2:9d:3a:9a:1c:c6: 77:b9:b3:a5:1c:18:7b:35:ee:71:ac:b1:81:93:f9: d6:9b:45:25:07:4f:d8:87:3d:ed:d4:4b:a4:8c:65: f2:12:ac:ef:db:f4:da:75:b4:51:b2:ce:a2:04:7b: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:59:94:C8:68:3B:CB:C5:F5:B7:41:B9:D5:5C:00:F4:10:7D:D0:76 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a2:ff:08:e1:d7:ec:32:2d:5d:d2:5f:de:4b:5e:d6:3e:89: b1:3d:84:98:1d:4d:f5:9c:be:fd:a0:95:ce:30:fc:50:ed:13: 57:7d:e4:ce:54:5c:72:4e:a1:8f:64:6d:8e:d1:b8:3a:45:b1: bb:26:9b:ba:43:02:51:d5:1b:58:ef:86:dc:4e:8c:51:3a:f4: 53:93:80:31:ae:95:2e:85:13:ee:5f:7a:96:02:25:ee:1d:4e: 24:a9:da:76:50:49:ec:ea:e5:3f:97:92:eb:24:e5:27:35:eb: db:75:35:ac:cc:1f:a9:89:79:12:fb:96:38:c6:bd:33:5d:38: f2:95:a2:f8:c7:26:60:9a:d7:ee:18:6e:63:13:b9:ad:23:1f: 08:9d:79:51:10:c2:95:6e:67:26:cf:a3:61:68:f9:f4:fe:82: 21:8c:c6:3a:e6:da:d7:05:0c:a7:e5:84:fd:16:cc:e0:19:80: a5:e3:58:57:8c:86:2d:13:9b:d5:ef:1f:89:89:86:db:70:40: b4:e0:fe:c3:f7:f5:6d:6f:56:fa:25:41:39:f9:b2:46:d3:c0: 0c:3d:f8:03:c3:8c:c9:04:af:a9:9c:c5:65:6a:aa:24:19:e9: 8a:f8:67:fb:cb:20:db:92:ed:4c:77:5e:f8:3e:45:8b:a0:94: b6:8f:35:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjYwNDE5MDAxMzM4WhcNMjYwNDI2MDAxMzM4WjAYMRYwFAYD VQQDEw02OWU0MWUzMy1kMTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgG0Um05dBIcXqGqi90FmkvyWWYPJsCOqmJim3rHaCL5XpGH687QkqAQjU0j Qh8WMBjpiF8ahwNt7YDCz8GyLJurTYtiKnV1k8eromueDlkpWZ53cvmipvU9bjju F1RY0BQq5Y3krHJ6NLnwuqPnPEvFBzcMqytASK9dBgYAUGkHk+T0HF/9kovosR6i nVA46uKkF5O3qcm1CyG8ARqvh/TrRIuGdl68NC0DXdphfJ0XKAiHV67csYg1KwgW nQ/bJwag92+L4gE2Xn+ynTqaHMZ3ubOlHBh7Ne5xrLGBk/nWm0UlB0/Yhz3t1Euk jGXyEqzv2/TadbRRss6iBHsnUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNBZlMho O8vF9bdBudVcAPQQfdB2MB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS6L/COHX7DItXdJf3kte1j6JsT2EmB1N9Zy+/aCVzjD8UO0TV33kzlRcck6h j2RtjtG4OkWxuyabukMCUdUbWO+G3E6MUTr0U5OAMa6VLoUT7l96lgIl7h1OJKna dlBJ7OrlP5eS6yTlJzXr23U1rMwfqYl5EvuWOMa9M1048pWi+McmYJrX7hhuYxO5 rSMfCJ15URDClW5nJs+jYWj59P6CIYzGOuba1wUMp+WE/RbM4BmApeNYV4yGLROb 1e8fiYmG23BAtOD+w/f1bW9W+iVBOfmyRtPADD34A8OMyQSvqZzFZWqqJBnpivhn +8sg25LtTHde+D5Fi6CUto81Ow== -----END CERTIFICATE-----Generated at Sun Apr 19 10:18:38 2026 by rpki-client